New research from Tenable has found 72% of U.K. organisations attribute recent business-impacting cyberattacks to vulnerabilities in technology put in place during the pandemic, while 68% suffered attacks that targeted remote workers.
Over a year since work-from-home mandates went into effect, many organisations are planning their long-term hybrid and remote work models. In fact, 70% of U.K. organisations now support remote employees, compared to 31% prior to the pandemic, while 86% plan to permanently adopt a remote working policy or have already done so. But embracing this new world of work has opened organisations to new and unmanaged cyber risk.
The data is drawn from ‘Beyond Boundaries: The Future of Cybersecurity in the New World of Work,’ a commissioned study of more than 1,300 security leaders, business executives and remote employees, including 168 respondents in the U.K., conducted by Forrester Consulting on behalf of Tenable.
“Remote and hybrid work strategies are here to stay and so will the risks they introduce unless organizations get a handle on what their new attack surface looks like,” said Amit Yoran, CEO, Tenable. “This study reveals two paths forward — one riddled with unmanaged risk and unrelenting cyberattacks and another that accelerates business productivity and operations in a secure way. CISOs and CEOs have the opportunity and responsibility to securely harness the power of technology and manage cyber risk for the new world of work.”
Hybrid work models and a digital-first economy have brought cybersecurity front and centre as a critical investment that can make or break short- and long-term business strategies. To address this demand, 75% of U.K. security leaders plan to increase their network security investments over the next 12 to 24 months; 73% will increase spend on cloud security; 66% plan to spend more on vulnerability management.
“The rapid adoption of technology to support a hybrid working model and moving business-critical functions to the cloud were a necessity driven by circumstance,” said David Cummins, VP of EMEA, Tenable. “The reality has seen the corporate attack surface explode, with many organisations still struggling to understand and address the risks introduced. Managing the plethora of technologies is now necessary to ensure enterprises aren’t left vulnerable and susceptible to cyberattacks.”